GRC Analyst

We help the world Be Everyday ReadyTMToday's threatscape is relentless. So are we. At Cyderes, we specialize in building practical IAM, exposure management, and risk programs, and stopping active threats fast with MDR that works with your existing security tools - all augmented by AI and driven by seasoned operators. Our tireless global team is laser-focused on cybersecurity, arming organizations with the people, platforms, and perspectives they need to conquer whatever tomorrow throws their way.Responsibilities• Coordinate IT security governance, risk and compliance activities across the enterprise• Oversee information security compliance activities, including daily, weekly, quarterly and/or annual security risk assessments - both performing internal assessments and responding to external assessments• Respond to request for information on Cyderes' security compliance from customers and partners, review and negotiate relevant agreements• Support efforts for compliance with SOC2, ISO 27001, NIST 800-53, and other security standards and regulatory frameworks• Conduct audit readiness assessments and coordinate with internal and external functions and audit resources• Support the implementation and administration of the Governance, Risk, and Compliance system (GRC)• Collaborate with other departments to direct security compliance issues to appropriate channels for investigation and resolutions• Revise and maintain security & controls policies and procedures in accordance with applicable regulations• Enable Continuous Compliance through Continuous testing of security & privacy controls• Identify and provide recommendations for technology, licensing, and/or process updates to improve Cyderes overall security posture• Develop and provide reports to keep management informed of the operation and progress of compliance effortsRequirments• Strong knowledge of security technologies and architecture, including encryption, cloud network security design, security group configuration, intrusion detection, data loss prevention and application security• Experience in design and implementation of information security policies and controls• Experience participating in external security audits; SOC2 Type II preferred• Experience conducting needs assessments and identifying/implementing appropriate solutions• Ability to take initiative and be proactive• Ability to work independently and be resourceful• Complex problem-solving and analytical skills• Excellent communication skills, both verbal and written; ability to condense complex information into simple language for the appropriate audience• CISSP, CISM, CISA certifications preferreWHY CYDERES?Benefits that go beyond the basics, we support our people so they can do their best work.Medical Insurance - Employee + dependents coveredLife Insurance - Protection for what matters mostRetirement Match Program - We invest in your futureHybrid Work Model - 2-3 days in officeMaternity & Paternity Leave - Time for the moments that matterPaid Time Off - PTO + sick & casual leaveBereavement & Volunteer Time - Give back to your communityProfessional Development - Reimbursement programLinkedIn L&D Platform - Thousands of courses at your fingertipsMobile Phone Reimbursement - Stay connected, on usCyderes is an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status.Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.